CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


First, I hope you're all well and staying safe.
Second, I want to give a "heads up" that you should see more activity here shortly, and maybe a few cosmetic changes.
I'll post more details to the "Announcements" forum soon, so be on the lookout. -E

 

Results 1 to 3 of 3

Thread: More granularity in Pre-Boot?

  1. 2015-10-01 #1
    randyvcbc
    randyvcbc is offline Junior Member
    Join Date
    2015-05-26
    Location
    Canada
    Posts
    18
    Rep Power
    0

    Default More granularity in Pre-Boot?

    Is there a way to add more/better granularity to the Pre-Boot cycle?

    Basically, the system requires me to add in the user that it will authenticate via AD, but how about the standard "Support" local account that desktop always uses on devices? What about making sure that the desktop group is allowed to log in as required in the field where they may not have a laptop that is/has been connected to the network for a while?

    I find it troubling that in order to make sure that this stuff works, I have to completely disable Pre-boot authentication.
    Reply With Quote Reply With Quote
  2. 2015-10-02 #2
    Cory Webb
    Cory Webb is offline Senior Member
    Join Date
    2014-09-23
    Location
    Austin, TX
    Posts
    136
    Rep Power
    9

    Default Re: More granularity in Pre-Boot?

    can u put up a screenshot of this
    Reply With Quote Reply With Quote
  3. 2015-10-13 #3
    randyvcbc
    randyvcbc is offline Junior Member
    Join Date
    2015-05-26
    Location
    Canada
    Posts
    18
    Rep Power
    0

    Default Re: More granularity in Pre-Boot?

    Sorry for the delay, I didn't get notification there was a response (I've ensured I get an immediate response now)...

    Here's the area. We'd really rather have the system allow company users to be able to log in. Basically, desktop builds the machine, and they need to use a local admin account to log in afterwards as well which is NOT on the network. As well, there are some areas where more than one user will log into a machine, and these are not always the same everyday. Needing to add in the users will take a lot more administration than should be required of the support group.

    Click image for larger version.  Name: Screen Shot 2015-10-13 at 3.46.57 PM.jpg  Views: 183  Size: 62.7 KB  ID: 999
    (Sanitized the names and IP's)
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Similar Threads

  1. About the boot options
    By vbavbalist in forum Check Point SecurePlatform (SPLAT)
    Replies: 0
    Last Post: 2012-07-13, 03:08
  2. Need more granularity with Geo Protection
    By RayPesek in forum Geo Protection
    Replies: 0
    Last Post: 2010-06-12, 14:22
  3. IP2450 will not boot
    By darkid in forum Check Point IP Appliances and IPSO (Formerly Sold By Nokia)
    Replies: 2
    Last Post: 2009-06-01, 18:26
  4. IP 530 Boot Question (a different one)
    By willr in forum Check Point IP Appliances and IPSO (Formerly Sold By Nokia)
    Replies: 5
    Last Post: 2007-10-13, 22:43
  5. Can not boot??
    By JackYi in forum Check Point IP Appliances and IPSO (Formerly Sold By Nokia)
    Replies: 1
    Last Post: 2006-05-20, 21:11

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules